Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/87b214-ba8d-4df9-9ec9-1a16ef492034/1/HpPX4oqwueeUSHlGoProzW7VQHE.mft
File: HpPX4oqwueeUSHlGoProzW7VQHE.mft (raw, json)
Hash identifier: Qq1qlZnHYbZj6nHUo6GORMScnebOCcL628tZHIUTv+Y=
Subject key identifier: B1:8F:13:D4:8D:A0:D7:8E:31:8F:32:49:1A:B4:43:B5:CA:7D:FA:B5
Authority key identifier: 1E:93:D7:E2:8A:B0:B9:E7:94:48:79:46:A0:FA:E8:CD:6E:D5:40:71
Certificate issuer: /CN=1e93d7e28ab0b9e794487946a0fae8cd6ed54071
Certificate serial: 019D3866408125ACCD185934C520D1F38346
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HpPX4oqwueeUSHlGoProzW7VQHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/87b214-ba8d-4df9-9ec9-1a16ef492034/1/HpPX4oqwueeUSHlGoProzW7VQHE.mft
Manifest number: 0229
Signing time: Sun 29 Mar 2026 07:01:58 +0000
Manifest this update: Sun 29 Mar 2026 07:01:58 +0000
Manifest next update: Mon 30 Mar 2026 07:01:58 +0000
Files and hashes: 1: 4XefERenMAQ3NiRiLifJbaOh1bI.roa (hash: EBxY06tfLDyTmDSe657Eshz7yBdzhaon1Ky7Pws1MFE=)
2: HpPX4oqwueeUSHlGoProzW7VQHE.crl (hash: F0GiN1jqSOikxks3RL3FkisAwa4zV389fPIzOygW44A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/87b214-ba8d-4df9-9ec9-1a16ef492034/1/HpPX4oqwueeUSHlGoProzW7VQHE.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/87b214-ba8d-4df9-9ec9-1a16ef492034/1/HpPX4oqwueeUSHlGoProzW7VQHE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HpPX4oqwueeUSHlGoProzW7VQHE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:40:81:25:ac:cd:18:59:34:c5:20:d1:f3:83:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e93d7e28ab0b9e794487946a0fae8cd6ed54071
Validity
Not Before: Mar 29 07:01:58 2026 GMT
Not After : Mar 30 07:01:58 2026 GMT
Subject: CN=b18f13d48da0d78e318f32491ab443b5ca7dfab5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:88:60:e0:d6:3f:ac:3a:63:ff:c2:c3:dc:e5:
41:0c:13:05:71:cf:ae:27:b9:44:26:2a:a1:63:a2:
05:2f:64:43:cc:ae:1b:0c:38:ff:90:58:3c:f4:a4:
64:6e:56:35:f0:f8:b5:47:f0:06:0b:b8:0f:26:4a:
fe:7c:f8:e5:26:70:56:68:0b:6f:8a:bf:14:57:f7:
30:63:78:98:f2:01:3b:de:ea:98:d7:8b:81:be:cc:
5c:6e:46:30:d3:f4:a5:d2:2e:97:d1:cd:e0:b2:0b:
cb:b9:39:4e:ac:7f:6b:7a:5b:82:c2:49:d7:70:90:
b4:1e:e5:cd:dd:67:db:94:f5:4d:d6:61:9e:8d:86:
c3:c8:89:0f:c1:12:bf:ef:fc:cf:7e:7b:6c:d2:bf:
55:32:e9:27:d4:45:b3:66:02:7c:1c:a0:fa:0f:e8:
7e:20:73:3d:d9:3d:68:ea:35:e0:f8:4d:bf:7e:b2:
5c:a2:a4:69:43:59:cc:5c:ca:67:35:16:99:ec:82:
c1:9a:7c:56:60:d5:b1:7e:68:93:2d:47:7f:ed:cb:
78:d6:0b:bd:a3:77:84:e5:24:1d:e9:ee:54:14:63:
ca:d0:fd:61:f6:26:b9:48:15:ba:88:d7:f4:39:49:
c0:a9:d7:65:22:4e:74:11:71:a1:2f:6f:69:53:1c:
2b:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:8F:13:D4:8D:A0:D7:8E:31:8F:32:49:1A:B4:43:B5:CA:7D:FA:B5
X509v3 Authority Key Identifier:
keyid:1E:93:D7:E2:8A:B0:B9:E7:94:48:79:46:A0:FA:E8:CD:6E:D5:40:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HpPX4oqwueeUSHlGoProzW7VQHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/87b214-ba8d-4df9-9ec9-1a16ef492034/1/HpPX4oqwueeUSHlGoProzW7VQHE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/87b214-ba8d-4df9-9ec9-1a16ef492034/1/HpPX4oqwueeUSHlGoProzW7VQHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:34:64:ee:4e:64:97:ef:f7:ef:1b:b8:df:91:1b:35:0a:f5:
d7:a5:55:b1:0e:40:57:00:6c:f3:68:ef:c4:45:03:e0:1f:20:
31:32:6a:08:9c:39:8b:c2:99:c4:d2:1f:8a:68:b3:0e:d7:35:
8a:51:6a:fe:f3:70:09:49:a4:f4:6c:f3:12:29:f7:c3:8c:56:
54:1d:f5:4e:11:46:83:41:54:8b:d0:97:7c:a6:ba:85:1b:3c:
9d:6a:a2:89:ce:79:0c:1b:be:e6:1d:0d:e5:3d:c1:3d:f8:17:
37:cf:89:b1:9b:ae:6c:c6:6f:22:d9:8b:f3:69:0b:c4:4b:ae:
91:be:b6:ab:9f:73:b1:ee:74:cc:af:9a:e6:6b:89:f5:96:ed:
33:66:a8:54:c0:24:9a:85:bc:61:87:62:e0:b7:cb:bd:9d:9a:
f0:bd:a5:b7:4a:49:6c:e7:4d:77:e7:e1:37:51:91:25:dc:d3:
30:04:10:17:12:14:67:7d:7c:0d:1e:5a:c4:ff:9c:59:b0:0e:
00:5a:27:6e:89:d1:95:93:eb:35:7e:c8:dd:3a:2b:e4:9b:af:
56:30:d3:1a:9c:b0:10:14:2c:7e:62:d4:c4:86:28:8b:04:68:
93:b9:d6:0b:b1:05:19:cd:e5:00:ae:24:ec:2e:1e:b8:b1:17:
a2:f1:ef:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:14:19 2026 by rpki-client